Your home for the best cybersecurity jobs

CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world's real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives. We have been living and breathing the world of real estate information and online marketplaces for over 35 years, giving us the perspective to create truly unique and valuable offerings to our customers. We've continually refined, transformed and perfected our approach to our business, creating a language that has become standard in our industry, for our customers, and even our competitors. We continue that effort today and are always working to improve and drive innovation. This is how we deliver for our customers, our employees, and investors. By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate. We are seeking a skilled and experienced Senior Cybersecurity Engineer with expertise in the deployment and operations of the Microsoft Defender suite of tooling. You will engage with all departments of CoStar Group helping drive and shape the way we manage the protection of our enterprise infrastructure. We're looking for someone who can communicate and reinforce security concepts to technical and non-technical team members. The ideal candidate will have deep experience operating Microsoft Defender tooling - including Microsoft Defender for Endpoint, Defender, XDR, Defender for Identify, Defender for Cloud Apps, Defender Vulnerability Management, Application Control (WDAC), Firewall, SmartScreen, Antivirus, etc. The successful candidate will be intrinsically motivated to learn new technologies and tools to move security forward as it is implemented within the CoStar Enterprise. This position is located in Washington, DC or Richmond, VA and offers a hybrid schedule of 3 days onsite, 2 days remote.

Design, implement, and manage Microsoft Defender solutions to protect against various cyber threats., Ensure proper configuration and deployment of Microsoft Defender for endpoint protection., Collaborate with cross-functional teams to integrate Microsoft Defender into the overall security framework., Configure and manage the Microsoft Defender Firewall to protect network traffic and prevent unauthorized access., Utilize SmartScreen to enhance protection against phishing and malicious websites., Develop and enforce USB restriction policies to mitigate the risks associated with unauthorized external devices., Implement and manage controls to monitor and regulate USB device usage across the organization., Deploy and maintain Windows Defender Application Control solutions to enhance application security., Define and enforce application control policies to prevent unauthorized applications and code execution., Participate in security incident response activities, leveraging Microsoft Defender capabilities to detect, investigate, and remediate security incidents., Collaborate with incident response teams to enhance the organization's overall security posture., Create comprehensive documentation for implemented security solutions, including configuration details, best practices, and troubleshooting guides., Generate regular reports on the status of Microsoft Defender deployments, USB restrictions, and Windows Defender application control effectiveness.

Basic Qualifications: - Bachelor's Degree required from an accredited, not for profit university or college (preferably in Computer Science, Cybersecurity or a related field) - A track record of commitment to prior employers - 5+ years total experience in engineering, including a minimum of 3 years in Security specific roles - Expert knowledge of Microsoft Defender tooling Preferred Skills: - Experience operating tools in a hybrid environment with a mix of on premise and cloud technologies Knowledge of industry compliance standards and regulations. Scripting and automation skills (Terraform, Perl, Python, PowerShell) for security-related tasks.

When you join CoStar Group, you'll experience a collaborative and innovative culture working alongside the best and brightest to empower our people and customers to succeed. We offer you generous compensation and performance-based incentives. CoStar Group also invests in your professional and academic growth with internal training, tuition reimbursement, and an inter-office exchange program. Our benefits package includes (but is not limited to): Comprehensive healthcare coverage: Medical / Vision / Dental / Prescription Drug, Life, legal, and supplementary insurance, Virtual and in person mental health counseling services for individuals and family, Commuter and parking benefits, 401(K) retirement plan with matching contributions, Employee stock purchase plan, Paid time off, Tuition reimbursement, On-site fitness center and/or reimbursed fitness center membership costs (location dependent), with yoga studio, Pelotons, personal training, group exercise classes, Access to CoStar Group's Diversity, Equity, & Inclusion Employee Resource Groups, Complimentary gourmet coffee, tea, hot chocolate, fresh fruit, and other healthy snacks. We welcome all qualified candidates who are currently eligible to work full-time in the United States to apply. However, please note that CoStar Group is not able to provide visa sponsorship for this position.

About Us

We realize people do not fit into neat boxes. We are looking for curious and empathetic individuals who are committed to developing themselves and learning new skills, and we are ready to help you do that. We cannot complete our mission without building a diverse and inclusive team. We hire the best people based on an evaluation of their potential and support them throughout their time at Cloudflare. Come join us!

About the Department

The Identity and Access Management (IAM) team is dedicated to ensuring the secure and efficient management of user identities, access privileges, and authentication mechanisms across all company systems, applications, and data. Our mission is to safeguard the organization against unauthorized access, protect sensitive information, and enable seamless user experiences while adhering to industry best practices and compliance standards.

A Security engineers work may include reviewing reports from various sources (automated scanners, employee reports, logs, etc.), managing and configuring automated tooling (Terraform, Open Policy Agent, Workers, etc.), building controls to enforce policy (two factor authentication requirements, role based access, etc), creating tools, reports or platforms to support the team's goals.

Desirable skills, knowledge and experience

• Strong understanding of identity federation (SAML, OAuth, OpenID Connect, etc.)
• Experience with Identity and Access Management policy application and enforcement
• Experience designing, implementing, and managing IAM solutions
• Experience working in DevOps / DevSecOps
• Experience working with configuration management tools like Terraform, Ansible, etc.
• Experience working with Information Technology platforms and systems
• Experience with SaaS security (Google Workspace, Salesforce, Workday, Atlassian, etc.)
• Experience in configuration, troubleshooting and maintenance of network security infrastructure (Web content filtering, Firewall, IDS and DLP controls)
• Experience with API gateways and API security
• Experience with Zero Trust security
• Experience in secure configuration of cloud-based storage and data management systems
• Experience with secure configuration of containerized application platforms (e.g. Kubernetes)
• Advanced programming experience (Python, TypeScript, Bash, etc.)

What Makes Cloudflare Special?

We’re not just a highly ambitious, large-scale technology company. We’re a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: We equip politically and artistically important organizations and journalists with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare’s enterprise customers--at no cost.

Athenian Project: We created Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration.

Path Forward Partnership: Since 2016, we have partnered with Path Forward, a nonprofit organization, to create 16-week positions for mid-career professionals who want to get back to the workplace after taking time off to care for a child, parent, or loved one.

1.1.1.1: We released 1.1.1.1 to help fix the foundation of the Internet by building a faster, more secure and privacy-centric public DNS resolver. This is available publicly for everyone to use - it is the first consumer-focused service Cloudflare has ever released. Here’s the deal - we don’t store client IP addresses never, ever. We will continue to abide by our privacy commitment and ensure that no user data is sold to advertisers or used to target consumers.

Sound like something you’d like to be a part of? We’d love to hear from you!

This position may require access to information protected under U.S. export control laws, including the U.S. Export Administration Regulations. Please note that any offer of employment may be conditioned on your authorization to receive software or technology controlled under these U.S. export laws without sponsorship for an export license.

Cloudflare is proud to be an equal opportunity employer. We are committed to providing equal employment opportunity for all people and place great value in both diversity and inclusiveness. All qualified applicants will be considered for employment without regard to their, or any other person's, perceived or actual race, color, religion, sex, gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship, age, physical or mental disability, medical condition, family care status, or any other basis protected by law. We are an AA/Veterans/Disabled Employer. hr@cloudflare.com or via mail at 101 Townsend St. San Francisco, CA 94107.

The Senior Identity and Access Management Engineer will be responsible for the service design, build and documentation all key elements of Hertz IAM and supporting infrastructure and services that are part of the overall authentication and authorization infrastructure of Hertz. It is incumbent upon the Identity and Access Management Senior Engineer to ensure uniformity of services, adherence to standards, and consistency of infrastructure delivery. The Senior Engineer works with external partners to deliver quality services to Internal and External Customers. The Identity and Access Management Senior Engineer is also responsible for providing daily support and maintenance for Hertz’s Global IAM Infrastructure.

Follow the deployment processes, which includes Build and Transition of all new initiatives, and includes phase gates reviews for key stakeholders, Maintains an understanding of all current and emerging Identity and Access Management technologies, open system standards, management technologies as they relate to the support of Hertz infrastructure, Identifies and assumes an ownership role of Identity and Access Management Infrastructure, project delivery and security management, Provide leadership and act as a senior level mentor and provide support to technical personnel for any/all issues regarding service design, implementation, education and support of Identity and Access Management infrastructure and availability, Stays current on regional application and infrastructure projects to maintain effective availability and global consistency amongst regional infrastructure, integration, and configuration, Gathers project/application requirements from customers and stakeholders, Help define support requirements and management infrastructure, Develops, documents, and supports scripts required to deliver a variety of Identity synchronization solutions., Ensures that third party solutions follow all Hertz standards, Provides senior management and general staff with accurate and complete status information, Sponsors, orchestrates, and implements technology pilots to evaluate emerging technologies and their applicability in support of Hertz business requirements and strategic goals., Adheres to all current Change and Problem management policies and procedures, Additional responsibilities include participation in global 7x24 support model, planning and organization of projects, tasks, and support initiatives as assigned

Core Technical Skills Required:

• Minimum 6 to 8 years of relevant practical experience in Identity and Access Management production support of large-scale, global environments supporting over 20,000 users and globally diversified application authentication requirements., Experience in Saviynt Identity Cloud platform or similar technology including but not limited to configuring UAR, application access, and SOD, Understanding of B2B and B2C identity management, Experience with Identity Management Solutions such as Azure and Okta, Experience in Active Directory (AD) and working knowledge of tools currently available to support AD, Experience with Microsoft 365 integration and provisioning including Azure AD and AD Connect, Experience in Active Directory Group Policy Objects (GPO), Experience implementing AD audit, logging, and monitoring policies, Experience in MFA, SSO, Conditional Access, Experience with implementing and supporting Public Key Infrastructures including Active Directory Certificate Services (AD CS) and external PKI providers, Experience with implementing role-based access, Strong scripting skills in PowerShell and understanding of VBScript, Knowledge of Web authentication such as OAuth, API-token, OpenID, SAML, REST, Directories, etc., Experience with Identity Management Solutions such as Azure and Okta, Knowledge of web authentication such as OAuth, API-token, OpenID, SAML, REST, Directories, etc., Possess a working knowledge and experience with Privilege Access Management solutions, Knowledge of Windows Server version 2016 and above, as well as Microsoft client operating systems, General Skills and Competencies Required:
• Bachelor’s degree in computer science or related field and/or equivalent experience, Excellent English written and verbal communication skills, Project management skills and global experience, Strong technical and non-technical communication skills, Ability to establish and maintain high levels of client trust and confidence, A proven track record of driving the delivery of large, complex IAM projects, Experience with the application of problem-solving methodologies to understand and solve challenging problems, Empathetic perspective on the customer point of view

We expect the starting salary to be around $125,000 with annual bonus and profit sharing eligibility. The actual salary will be determined based on years of relevant work experience, What You’ll Get:

• 40% off any standard Hertz Rental , Paid Time Off, Medical, Dental & Vision plan options, Retirement programs, including 401(k) employer matching, Paid Parental Leave & Adoption Assistance, Employee Assistance Program for employees & family, Educational Reimbursement & Discounts, Voluntary Insurance Programs - Pet, Legal/Identity Theft, Critical Illness, Perks & Discounts –Theme Park Tickets, Gym Discounts & more

Company Description

Our Mission

At Palo Alto Networks® everything starts and ends with our mission: Being the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.

Our Approach to Work

We lead with flexibility and choice in all of our people programs. We have disrupted the traditional view that all employees have the same needs and wants. We offer personalization and offer our employees the opportunity to choose what works best for them as often as possible - from your wellbeing support to your growth and development, and beyond!

At Palo Alto Networks, we believe in the power of collaboration and value in-person interactions. This is why our employees generally work from the office three days per week, leaving two days for choice and flexibility to work where you feel most effective. This setup fosters casual conversations, problem-solving, and trusted relationships. While details may evolve, our goal is to create an environment where innovation thrives, with office-based teams coming together three days a week to collaborate and thrive, together!

This role is client-facing and requires the Principal Consultant to lead and produce deliverables based on reactive services client engagements. The Principal Consultant will work directly with multiple customers and key stakeholders (Admins, C-Suite, etc) to manage incident response engagements and provide guidance on longer term remediation.

• Perform reactive incident response functions including but not limited to - host-based analysis functions through investigating Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs)
• Examine firewall, web, database, and other log sources to identify evidence of malicious activity
• Investigate data breaches leveraging forensics tools including Encase, FTK, X-Ways, SIFT, Splunk, and custom Crypsis investigation tools to determine source of compromises and malicious activity that occurred in client environments
• Manage incident response engagements to scope work, guide clients through forensic investigations, contain security incidents, and provide guidance on longer term remediation recommendations
• Ability to perform travel requirements as needed to meet business demands (on average 20%)
• Mentorship of team members in incident response and forensics best practices

Your Experience

• 6+ years of incident response or digital forensics consulting experience with a passion for cyber security
• Strong leadership skills including experience managing a team or individuals
• Experience with leading complicated engagements including scoping, interfacing with the client, and have executed on a technical front
• Proficient with host-based forensics and data breach response
• Experienced with EnCase, FTK, X-Ways, SIFT, Splunk, Redline, Volatility, WireShark, TCPDump, and open source forensic tools
• Incident response consulting experience required
• Bachelor’s Degree in Information Security, Computer Science, Digital Forensics, Cyber Security or related field or equivalent military experience required
• Identified ability to grow into a valuable contributor to the practice and, specifically
• have an external presence via public speaking, conferences, and/or publications
• have credibility, executive presence, and gravitas
• be able to have a meaningful and rapid delivery contribution
• have the potential and capacity to understand all aspects of the business and an excellent understanding of PANW products
• be collaborative and able to build relationships internally, externally, and across all PANW functions, including the sales team

The Team

Unit 42 Consulting is Palo Alto Network's security advisory team.  Our vision is to create a more secure digital world by providing the highest quality incident response, risk management, and digital forensic services to clients of all sizes. Our team is composed of recognized experts and incident responders with deep technical expertise and experience in investigations, data breach response, digital forensics, and information security. With a highly successful track record of delivering mission-critical cybersecurity solutions, we are experienced in working quickly to provide an effective incident response, attack readiness, and remediation plans with a focus on providing long-term support to improve our clients’ security posture.

Our Commitment

We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together.

We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at [email protected]

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.

All your information will be kept confidential according to EEO guidelines.

The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be between $151,400/yr to $208,100/yr. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found here.

*Is role eligible for Immigration Sponsorship?: No.

Please note that we will not sponsor applicants for work visas for this position.*

Summary

Our Mission

At Palo Alto Networks® everything starts and ends with our mission:

Being the cybersecurity partner of choice, protecting our digital way of life.

Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.

Overview

We lead with flexibility and choice in all of our people programs. We have disrupted the traditional view that all employees have the same needs and wants. We offer personalization and offer our employees the opportunity to choose what works best for them as often as possible - from your wellbeing support to your growth and development, and beyond!

• Establish yourself as a trusted advisor to prospects and customers working with your Account Manager and the local partners within your territory
• Identify and document specific problems with prospective and current customers which can be solved through the deployment of integrated solutions
• Architect and propose validated solutions which address the identified cybersecurity problems in each unrivaled environment
• Ensure ongoing customer happiness, support, and adoption
• Continuous self-improvement and learning to maintain technical leadership of applicable technologies (data center, SDN, public cloud, security, networking, etc.)
• Understand and effectively differentiate against our top competitors
• Act as the customer advocate for any issues that require technical assistance and follow up with the customer until the issue is resolved

Required Qualifications

• 4+ years of experience as a successful pre-sales SE, systems integrator, or equivalent experience
• BS in Computer Science or equivalent or equivalent military experience required
• Experience with systems installation, configuration and administration of routers/switches, UNIX/Linux, and Windows-based systems

Preferred Qualifications

• Working knowledge of Palo Alto Networks products, with a focus on Next-Generation Firewall and some comparative technologies - Continuous technical development
• Experience that emphasizes L2-L4 Networks (L2 switching architectures including Spanning Tree, IP routing that includes OSPF and BGP, and L4 Load balancing)
• Understand and effectively present our security platform to technical and non-technical audiences
• Strong analytical skills to evaluate complex multivariate problems and find a systematic approach to gain a quick resolution, often under duress
• Mature and effective time-management skills
• Prior experience selling network infrastructure-based security appliances, including but not limited to - Firewalls, SSL/IPSec VPNs, Security Proxies and Caches
• Familiarity working with Channel partners and understanding of a channel-centric market approach
• Previous work in the enterprise networking security space
• Experience and knowledge of modern network threats and malware, network forensics, automation tools and technologies, and endpoint security technologies
• Significant industry certifications (SANS, CISSP, CCIE, etc)

Additional Information

As part of our Systems Engineering team, you’ll support the sales team with technical expertise and guidance when establishing trust with key clients. You won’t find someone at Palo Alto Networks that isn’t committed to your success – with everyone pitching in to assist when it comes to solutions selling, learning, and development. As a member of our systems engineer team, you are driven by a solutions-focused sales environment and find fulfillment in working with clients to resolve incredible complex cyberthreats.

Our Commitment

We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together.

We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at

[email protected].

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.

All your information will be kept confidential according to EEO guidelines.

The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/com-missioned roles) is expected to be between $192,000/yr to $264,000/yr. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found

here.

#LI-TH1

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.

Reporting to the Director of Network Application Engineering, the Principal Network Security Engineer is seen as a technical expert in networking security. This is a technical, team lead, and hands on role, with a primary focus on design and implementation of network security change; although you will be expected to support the network security operations team with complex troubleshooting of issues as required. You will have experience of working in a high impact, mission critical environments, where service matters, and exceeding expectations is the norm. You have lead critical projects, thrive in critical problem solving, and enjoy leading a team working on projects

Core Skills & Experience: - A minimum 10+ years of hands on experience of network security solutions within a global enterprise scale organization (5,000-50,000 users) with both traditional datacenters and Cloud. - Considerable first-hand experience of design engineering and building resilient and scalable security solutions, ideally within finance or investment banking. - Cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws - The concepts of risk and compliance and how to translate these into effective security solutions. - Appreciation of automation and orchestration and will have experience of scripting against an API - Strong understanding of Layer 2, Layer 3 & Layer 4-7 network and security technologies. - Familiar with a variety of testing tools, networking technologies and techniques to accurately troubleshoot and resolve complex technical problems associated with the service, application and network hardware and software. Technical Skills & Experience: You will have expert knowledge and experience in several of the following areas: - NGFW platforms and management tools such as Tufin - Network Access Control in enterprise environments - Application Delivery & Load balancers - Public and Private cloud security - Workflow automation - Routing and switching - WAN Optimization - DNS, IPAM and DHCP It is desirable and advantageous to also have knowledge and experience of the following technology platforms: - Check Point, Fortinet, Tufin - Forescout, Cisco ISE - F5, Netscaler - Infoblox - Microsoft Active Directory, CyberArk - Azure log analytics - Akamai CDN - Illumio - Zscaler - Python - Ansible,Terraform - Azure and AWS native firewall and load balancing Technical Certification: It is desirable and advantageous to have the following certification or demonstrable working experience: - Check Point CSSE - CISSP - ITILv3 foundation or higher - Zscaler fundamentals certification, advanced preferred - F5

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas. Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose. https://www.northerntrust.com/content/dam/northerntrust/pws/nt/images/careers/ntawards.jpg We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater Reasonable accommodation Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com. We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people. Apply today and talk to us about your flexible working requirements and together we can achieve greater.

NA

NA

NA

NA

NA

NA

NA

NA

Salary Range: $105,000 - $133,500

Purpose of the Job

As the IT Engineering Manager for JFK & EWR ITSEC group at SDC sites, you will be responsible for managing the ITSEC team at both Airports, supporting ITSEC systems design and construction support of various redevelopment projects at JFK Airport as they relate to the JFK AirTrain ITSEC operations. Primary focus: managing ITSEC team and O&M systems support, coordinating efforts of multiple stakeholders, including ITSEC engineering group, contractors, government agencies, airport personnel, and the JFK Rail Operations team, to ensure that ITSEC and communications projects are completed on time, within budget, and to the satisfaction of all parties involved in a support role.

Oversee and manage ITSEC group of technical staff with 15+ employees, including System Engineers, IT Specialists and Project Engineers.

Develop ITSEC project plans and schedules and oversee their implementation to ensure the timely completion of projects.

Work with stakeholders to identify ITSEC project requirements/scopes and ensure that designs meet those requirements.

Manage ITSEC team & ITSEC maintenance budgets and monitor expenditures to ensure that ITSEC system maintenance is completed within budget.

Manage ITSEC project risks and issues and develop contingency plans as needed.

Ensure that all ITSEC project documentation is maintained correctly and organized.

Coordinate with both sites JFK/EWR and PANYNJ executive ITSEC-related working group.

Communicate regularly with stakeholders to provide ITSEC systems & project updates, address concerns, and ensure all parties comprehend.

Ensure that all ITSEC projects comply with relevant safety regulations.

Educational Requirements

• Bachelor's Degree in Computer Science, Electronics, Cybersecurity, or related field.
• Masters Degree (Preferred)

Experience

• 10 to 15 years of IT Security Experience
• 3 to 5 years of IT Project Management Experience (or demonstrated equivalent)
• 4 to 6 years of technical staff management experience
• Must have the following certifications (CCNA, Network +, Security +)
• Investigate IT Security and Cyber incidents/accidents and manage regulatory investigation corrective action plans in accordance with oversight board guidelines.
• Experience working with the Port Authority of New York & New Jersey or a comparable agency.

Competencies and Skills

• Excellent communication, leadership, and interpersonal skills.
• Strong analytical and problem-solving skills.
• Ability to manage multiple projects simultaneously.
• Experience with IT project management software and tools.
• Familiarity with relevant safety and environmental regulations.
• Ability to work under pressure and meet tight deadlines.
• Willingness to work irregular hours as needed.

You don’t need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family, you’ll be proud. If you’re up for the challenge, we’d love to hear from you!

Important to note

As a global business, we’re an equal-opportunity employer that celebrates diversity across the 63  countries we operate in. We’re committed to creating an inclusive workplace for everyone.

As part of the Cyber Risk and Resilience Directorate, you will be part of a team of engineers aimed at applying the latest tools, techniques and methods to resilience challenges. The Senior Cybersecurity Engineer will support the operational capabilities and continued evolution of the Cybersecurity Assurance Team (CA), specifically focusing on cybersecurity training development and delivery. The CA team develops solutions (in the form of frameworks, models, tools, policies, practices, technical guidance, and training) that allow organizations to assess, analyze, and manage organizational, operational, and technical risks to mission-critical assets, processes, systems, and infrastructures. In this role, you will help provide the bridge between our operational capabilities and the development of impactful in-person and on-demand training.

Project Participation and Customer Engagement (80%): You will contribute to customer projects designed to advance the state of the art in cybersecurity. You will represent the SEI regularly presenting our mission and our work to our stakeholders. Community Engagement (15%): You will engage with our communities of interest; this includes presenting our mission and work via publication and presentation. You will build and maintain relationships with the relevant research and technology communities. Professional Development (5%): You will continue to grow your knowledge and skills in cybersecurity and stay current on emerging trends and topics relevant to the team’s portfolio.

Requirements: Education and Experience: BS degree in a relevant discipline with 10 years of applicable experience, or a MS degree in a relevant discipline with 8 years of applicable experience, or a PhD in a relevant discipline with 5 years of applicable experience. Desired Experience: Strong writing/editing ability. Ability to interact with others and function as a member of a process action team or instructional design working group. Experience with course and information mapping, flowcharting, etc. Certifications: A+ CE, CCNA-Security, CND, Network+ CE, SSCP, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Project Management Professional (PMP),or equivalent experience

Location Pittsburgh, PA. Job Function Software/Applications Development/Engineering. Position Type Staff – Regular. Full Time/Part time Full time. Pay Basis Salary. More Information: Please visit “Why Carnegie Mellon” to learn more about becoming part of an institution inspiring innovations that change the world. Click here to view a listing of employee benefits. Carnegie Mellon University is an Equal Opportunity Employer/Disability/Veteran.

As part of the Cyber Risk and Resilience Directorate, you will be part of a team of engineers aimed at applying the latest tools, techniques and methods to resilience challenges. The Senior Cybersecurity Engineer will support the operational capabilities and continued evolution of the Cybersecurity Assurance Team (CA), specifically focusing on cybersecurity training development and delivery. The CA team develops solutions (in the form of frameworks, models, tools, policies, practices, technical guidance, and training) that allow organizations to assess, analyze, and manage organizational, operational, and technical risks to mission-critical assets, processes, systems, and infrastructures. In this role, you will help provide the bridge between our operational capabilities and the development of impactful in-person and on-demand training.

Knowledge, Skills and Abilities:

Candidates should have experience/knowledge in several of the following:

Experience in managing projects

Experience in delivering cybersecurity training

Familiarity with cybersecurity standards (e.g., NIST CSF, NIST SP 800 series, ISO 27000 series, etc.).

Knowledge of assessment methodologies, tactics, techniques, and procedures

Knowledge of the evaluation of cybersecurity controls and practices.

Knowledge of conducting security assessments including conducting on-site technical assessments, pre- and post-assessment analysis, preparation of technical reports and briefings to customers.

Knowledge of critical infrastructure protection concepts and standards.

Knowledge of information sharing practices and models.

An understanding of maturity model concepts.

Ability to deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff.

Ability to communicate with a range of audiences ranging from junior technical individual contributors to senior customer points of contacts.

Project Participation and Customer Engagement (80%): You will contribute to customer projects designed to advance the state of the art in cybersecurity. You will represent the SEI regularly presenting our mission and our work to our stakeholders.

Community Engagement (15%): You will engage with our communities of interest; this includes presenting our mission and work via publication and presentation. You will build and maintain relationships with the relevant research and technology communities.

Professional Development (5%): You will continue to grow your knowledge and skills in cybersecurity and stay current on emerging trends and topics relevant to the team’s portfolio.

Requirements:

Education and Experience: BS degree in a relevant discipline with 10 years of applicable experience, or a MS degree in a relevant discipline with 8 years of applicable experience, or a PhD in a relevant discipline with 5 years of applicable experience.

Technical Excellence: You have a track record of successfully leading projects for a technical discipline. You are user-centered and accomplishment-focused, driving projects and the people that work on them to successful, high-impact outcomes.

Leadership: You have the ability to lead diverse teams in analyzing and solving real-world problems by developing engineering guidance as well as applying and tailoring, as appropriate, SEI and non-SEI technologies and resources.

Working in a Creative, Dynamic Environment: You have experience contributing to multiple simultaneous projects and thrive in a creative and high-energy environment. You are willing to experiment with new practices and develop effective processes, practices, and infrastructure to support successful projects.

Mentorship: You have experience mentoring, motivating, and empowering less-experienced team members in ways that promote equity and inclusion.

Communication: You are an outstanding communicator and can interact collaboratively and diplomatically with customers and colleagues at all levels of knowledge and experience. You grasp the big picture, direction, and goals of an effort with ability to dig into the details on problems and technical concepts. You can present complex ideas to people who may not have a deep understanding of the subject area.

Travel: Frequent (15-35%) to various locations within the SEI and CMU community, customer sites, conferences, and offsite meetings.

Security Clearance: You will be subject to a background investigation and must have the ability to obtain and maintain a Department of Defense security clearance.

Applicants for this position must be currently legally authorized to work for CMU in the United States. CMU will not sponsor or take over sponsorship of an employment visa for this opportunity.

Desired Experience:

Strong writing/editing ability. Ability to interact with others and function as a member of a process action team or instructional design working group. Experience with course and information mapping, flowcharting, etc.

Certifications: A+ CE, CCNA-Security, CND, Network+ CE, SSCP, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Project Management Professional (PMP),or equivalent experience

Location

Pittsburgh, PA

Job Function

Software/Applications Development/Engineering

Position Type

Staff – Regular

Full time/Part time

Full time

Pay Basis

Salary

More Information: Please visit “Why Carnegie Mellon” to learn more about becoming part of an institution inspiring innovations that change the world.

Click here to view a listing of employee benefits

Carnegie Mellon University is an Equal Opportunity Employer/Disability/Veteran .

Statement of Assurance

Located in a historic neighborhood in the nation's capital, Georgetown offers rigorous academic programs, a global perspective, exciting ways to take advantage of Washington, D.C., and a commitment to social justice. Our community is a tight knit group of remarkable individuals interested in intellectual inquiry and making a difference in the world.

The Cybersecurity Analyst, Endpoint Health and Security is an advanced, hands-on practitioner and representative of the cybersecurity operations team, performing a technical role that requires a solid understanding of information security and systems administration, as well as an understanding of business and governance process. They are responsible for the benchmarking and compliance of institution endpoints, applying an understanding of applications, operating systems, networking, cloud infrastructure and basic attacker tactics, techniques and procedures (TTPs); and maintain a high level of rigor. The Cybersecurity Analyst understands that legacy and present-day systems and applications may have weaknesses that can be exploited by external threat actors and potentially lead to a breach. Given that cyber endpoint health and security and risk exposure extend across all technical systems enterprise-wide, their responsibilities include identifying end-user assets and vulnerabilities, reporting, remediation and continuous assessment. They collaborate with others on the team for remediation and additional validation, as well as contribute to other collaborative approaches driven by the cybersecurity team strategy.

Candidate Qualifications- Capable of working with diverse teams and promoting an enterprise-wide positive security culture- Self-starter requiring minimal supervision- Outstanding written and verbal, business and cybersecurity communication skills- Highly organized and efficient, with strong project management, multitasking and organizational skills- Ability to preserve credibility with the team and external constituents through sustained industry knowledge- Ability to motivate teammates to achieve excellence and willingly shares knowledge- Ability to maintain a high level of integrity, trustworthiness and confidence, with the highest level of professionalism- Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively- Ability to obtain and maintain technical team and business support to influence a collaborative effort to reduce attack surfacePosition Requirements- Knowledge of one or more compliance standards, including Payment Card Industry (PCI), Health Information Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA), National Institute of Standards (NIST) or International Standards Organization (ISO)- Scripting capability in Python, Bash, Perl or PowerShell- Ability to analyze incident logs, assess malware, and understand vulnerabilities and exploits, along with strong operating systems knowledge- Understanding of operating systems, endpoint applications, networking protocols and devices- Working knowledge of Windows OS, Mac OS, Linux and Unix OS- Working knowledge of Jamf Intune, SCCM, CIS Benchmarking, STIG- Demonstrated understanding and comprehension of a wide range of host cybersecurity solutions- Applicable knowledge of adversary tactics, techniques and procedures (TTPs), MITRE ATT&ACK framework, CVSS, open source intelligence (OSINT) and deception techniques- Demonstrated ability to investigate, handle and track incidents- Proficiency with SIEM, intrusion detection and prevention systems (IDS/IPS), threat intelligence platforms and security orchestration, and automation and response (SOAR) solutions to centralize and manage incident and remediation workflowExperience- At least 3 to 5+ years’ experience in information security administration, vulnerability management or security operations- Proficiency with vulnerability management solutions such as Tenable/Nessus, Qualys, Tanium and open source- Experience stabilizing systems to run minimal application requirements, least privilege and additional host hardening- Experience conducting organization-wide vulnerability scanning and remediation processes- Familiarity in BYOD and semi-managed endpoint environment

Work Mode: Telework. Please note that work mode designations are regularly reviewed in order to meet the evolving needs of the University. Such review may necessitate a change to a position’s mode of work designation. Complete details about Georgetown University’s mode of work designations for staff positions can be found on the Department of Human Resources Mode of Work Designation. Salary Range- The expected pay range for this position is $54,616 to $90,000 per annum. Georgetown University provides pay ranges representing its good faith estimate of what the university reasonably expects to pay for a position. The pay offered to a selected candidate will be determined based on factors such as, but not limited to, the scope and responsibilities of the position, the qualifications of the selected candidate, departmental budget availability, internal equity and external market pay for comparable jobs. Current Georgetown Employees: If you currently work at Georgetown University, please exit this website and login to GMS (gms.georgetown.edu) using your Net ID and password. Then select the Career worklet on your GMS Home dashboard to view Jobs at Georgetown. Submission Guidelines: Please note that in order to be considered an applicant for any position at Georgetown University you must submit a resume for each position of interest for which you believe you are qualified. Documents are not kept on file for future positions. Need Assistance: If you are a qualified individual with a disability and need a reasonable accommodation for any part of the application and hiring process, please click here for more information, or contact the Office of Institutional Diversity, Equity, and Affirmative Action (IDEAA) at 202-687-4798 or ideaa@georgetown.edu. Need some assistance with the application process? Please call 202-687-2500. For more information about the suite of benefits, professional development and community involvement opportunities that make up Georgetown's commitment to its employees, please visit the Georgetown Works website. EEO Statement: Georgetown University is an Equal Opportunity/Affirmative Action Employer fully dedicated to achieving a diverse faculty and staff. All qualified applicants are encouraged to apply and will receive consideration for employment without regard to race, color, religion, national origin, age, sex (including pregnancy, gender identity and expression, and sexual orientation), disability status, protected veteran status, or any other characteristic protected by law. Benefits: Georgetown University offers a comprehensive and competitive benefit package that includes medical, dental, vision, disability and life insurance, retirement savings, tuition assistance, work-life balance benefits, employee discounts and an array of voluntary insurance options. You can learn more about benefits and eligibility on the Department of Human Resources website.

Located in a historic neighborhood in the nation's capital, Georgetown offers rigorous academic programs, a global perspective, exciting ways to take advantage of Washington, D.C., and a commitment to social justice. Our community is a tight knit group of remarkable individuals interested in intellectual inquiry and making a difference in the world.

The Cybersecurity Threat Program Manager leads a comprehensive cyber threat management program across the enterprise; and develops and leads the activities related to detection, correlation, and analysis of internal and external cybersecurity threats to institutional assets, data, systems, and infrastructure. Cyber threat coordination occurs across departmental units to ensure those parties responsible and accountable for data are kept consulted and informed. The Program Manager collaborates as needed with multiple stakeholders, including human resources, system and data owners, legal, physical security, SOC/CIRT, technology support groups. They apply their technical competence and business acumen to foster and maintain strong relationships with departmental units, as well as their constant up-to-date familiarity with cyber threat tactics, techniques and procedures (TTPs) across all lines of business in complex environments.

Candidate Qualifications• Capability of working with diverse teams and promoting an enterprise-wide positive security culture• Ability to organize, prioritize and complete tasks within defined SLAs• Excellent judgment and the ability to make quick decisions when working with complex situations• Self-starter requiring minimal supervision• Outstanding written and verbal, business and cybersecurity communication skills• Highly organized and efficient, with strong project management, multitasking and organizational skills• Demonstrated understanding and comprehension of a wide range of network and host cybersecurity solutions• Ability to motivate teammates to achieve excellence and willingly shares knowledge• Ability to maintain a high degree of integrity, trustworthiness and confidence; and to represent the organization and its management team with the highest level of professionalism• Trustworthy and leads by example for others to follow• Track record of successful personnel managementPosition Requirements• Experience managing a cyber threat program and leading technical teams• Excellence in communicating business risk from cybersecurity topics• Strong understanding and demonstrated use of best practices following NITTF, NIST and CERT guidance• Proficiency with driving measurable improvement in detection and response capabilities at scale.• Experience managing SIEM, UEBA, IAM, vulnerability management, data loss prevention (DLP), threat intelligence, MITRE ATT&CK framework mapping, security orchestration automation and response (SOAR), and other network and system monitoring tools• Experience supporting investigations using formal chain-of-custody methods, forensic tools and best practices• Proficiency with security analytics and threat data management• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating well• Highly-effective, action-oriented communication up and down the leadership scale• Analytical and problem-solving mindset• Strategic and tactical thinking, along with decision-making skills• Understanding of one or more of the following: ISO 27001, NIST, PCI, HIPAA/HITECH, FERPA, GDPR, CIS Benchmarks, NITTFExperience• At least 5 to 7 years of cybersecurity experience (or information technology coupled with cybersecurity), with at least 3-5 of those years in a threat intelligence or incident response practitioner role, and including a) 5+ years of cybersecurity or information technology practitioner experience; and b) 3+ years of threat intelligence experience.• At least 2+ years cloud computing – for example, Amazon Web Services, Google Cloud Platform or Microsoft Azure) – *preference for security configuration experience• Advanced familiarity with Tenable, Qualys, and/or CrowdStrikeEducationBachelor's degree in computer science, information assurance, MIS or related field, or the equivalentPreferred certifications• CISSP• SANS• CERT ITPM and/or ITVA (current or willingness to obtain)

Work Mode: Telework. Please note that work mode designations are regularly reviewed in order to meet the evolving needs of the University. Such review may necessitate a change to a position’s mode of work designation. Complete details about Georgetown University’s mode of work designations for staff and AAP positions can be found on the Department of Human Resources Mode of Work Designation. Salary RangeThe expected pay range for this position is $66,783 to $110,000 per annum. Georgetown University provides pay ranges representing its good faith estimate of what the university reasonably expects to pay for a position. The pay offered to a selected candidate will be determined based on factors such as, but not limited to, the scope and responsibilities of the position, the qualifications of the selected candidate, departmental budget availability, internal equity and external market pay for comparable jobs.

Position Summary: As a member of CMR, you will work with other team members to develop and deliver cybersecurity readiness capabilities, programs, and software for US Government departments, agencies, and associated organizations. Although not essential, you will have opportunities to perform applied and, in some cases, fundamental research in the fields of cybersecurity, software engineering, and artificial intelligence.

CMR’s core strength is our supportive and highly collaborative culture. Our team recognizes the importance of our mission: to ensure that our nation and our partners have the tools and capabilities they need to neutralize threats in cyberspace. We are looking for people of character who share our passion, love technology and teamwork, and who have a desire to teach, learn from, and collaborate with others. Your intellectual curiosity and desire to learn new concepts and skills alongside your teammates is what we need most—attitude is everything! We provide numerous internal and external training and professional development opportunities for members of our team and learn from each other through cross-training and mentoring.

Collaborate and problem-solve with fellow team members

Collect project requirements and translate them into technical work

Produce creative and engaging hands-on cybersecurity challenges and exercises

Build physical and virtualized networks; define and solve challenging problems for cybersecurity simulations, training programs, and competitions

Define, create, and maintain technical solutions to support government cybersecurity programs

Work regularly with a wide range of software and hardware technologies

Develop and deliver cybersecurity training content to government sponsors

Develop software proofs of concept and prototypes

Required Qualifications

• BS with 3 years of applicable experience or MS with 1 year of applicable experience in Computer Science, Information Science, Engineering, Cybersecurity or related technical discipline
• Willingness to travel to various locations in support of the SEI’s overall mission. This includes within the SEI and CMU community, sponsor sites, conferences, and offsite meetings on occasion. Minimal travel (5-10%)
• You will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance

Preferred Qualifications

• System administration of server and desktop platforms (e.g., Windows, Linux)
• Network design, configuration, and troubleshooting (e.g., routers, switches, firewalls, proxies, etc.)
• Scripting (e.g., Bash, PowerShell, Python, etc.)
• Virtualization and cloud technologies (e.g., VMware vSphere, Microsoft Azure, Amazon AWS, etc.)
• Programming (e.g., Python, C#, C, C++, TypeScript/Angular, Java, etc.)
• Reverse engineering
• DevOps technologies (e.g., Git, Docker, Kubernetes, etc.)
• Federal government experience involving information technology, cybersecurity, or management of large-scale government networks

Our benefits philosophy encompasses three driving priorities: Choice, Control, and Well-being. Learn more at https://www.cmu.edu/jobs/benefits-at-a-glance/. You can join an institution and inspire innovations that change the world.

JOB TITLE: Information Security Associate

FUNCTIONAL TITLE: ISSE, Intermediate

TARGET COMPENSATION: $175,000

LOCATION: Ft Meade Md.

CLEARANCE: TS/SCI with FS Poly

JOB CODE: FS3322

Information Systems Security Engineer (ISSE) - Intermediate

Description:

Provide support for a program, organization, system or enclave's information assurance program. Provide support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies.

Maintain operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed.

Assist with the management of security aspects of the information system and perform day-to-day security operations of the system.

Evaluate security solutions to ensure they meet security requirements for processing classified information.

Perform vulnerability/risk assessment analysis to support security authorization.

Provide configuration management (CM) for information systems security software, hardware, and firmware.

Manage changes to system and assess the security impact of those changes. Prepare and review documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).

Support security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF).

Position is responsible for:

Provide support to senior ISSOs for implementing, and enforcing information systems security policies, standards, and methodologies.

Assist with preparation and maintenance of documentation.

Assist in the evaluation of security solutions to ensure they meet security requirements for processing classified information.

Assist with Configuration Management (CM) for information system security software, hardware, and firmware.

Maintain records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades.

Propose, coordinate, and implement information systems security policies, standards, and methodologies.

Develop and maintain documentation for Security Authorization in accordance with ODNI and DoD policies.

Provide CM for security-relevant information system software, hardware, and firmware.

Ensure compliance with system security policy.

Evaluate security solutions to ensure they meet security requirements for processing classified information.

Maintain operational security posture for an information system or program.

Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational Cybersecurity posture for a system, program, or enclave.

Develop and update the system security plan and other Cybersecurity documentation.

Assist with the management of security aspects of the information system and perform day-to day security operations of the system.

Track and ensure appropriate user identification and authentication mechanism of the Information System (IS)

Obtain system authorization for ISs under their purview.

Provide support for a program, organization, system, or enclave's information assurance program.

Plan and coordinate implementation of IT security programs and policies

Manage and control changes to the system assessing the security impact of those changes.

Provide daily oversight and direction to contractor ISSOs.

Job Requirements

Familiarity with commercial security products, security authorization techniques, security incident management, and PKI and authorization services.

Education/Experience:

In lieu of a Bachelor's degree, four (4) additional years of work-related experience may be substituted.

Â

If you are interested in pursuing this opportunity, please respond back and include the following:

MS WORD Resume

Contact information.

Availability

Â

Upon receipt, one of our managers will contact you to discuss the position in full detail.

Steve Fleischner

Recruiting Manager

INTERMEDIA GROUP, INC.

EMAIL: steve@intermediagroup.com

LINKEDIN: https://www.linkedin.com/in/stevefleischner/

JASON DENMARK

Sourcing Recruiter

jdenmark@intermediagroup.com

Provide support for a program, organization, system or enclave's information assurance program. Provide support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies.

Maintain operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed.

Assist with the management of security aspects of the information system and perform day-to-day security operations of the system.

Evaluate security solutions to ensure they meet security requirements for processing classified information.

Perform vulnerability/risk assessment analysis to support security authorization.

Provide configuration management (CM) for information systems security software, hardware, and firmware.

Manage changes to system and assess the security impact of those changes. Prepare and review documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).

Support security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF).

Position is responsible for:

Provide support to senior ISSOs for implementing, and enforcing information systems security policies, standards, and methodologies.

Assist with preparation and maintenance of documentation.

Assist in the evaluation of security solutions to ensure they meet security requirements for processing classified information.

Assist with Configuration Management (CM) for information system security software, hardware, and firmware.

Maintain records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades.

Propose, coordinate, and implement information systems security policies, standards, and methodologies.

Develop and maintain documentation for Security Authorization in accordance with ODNI and DoD policies.

Provide CM for security-relevant information system software, hardware, and firmware.

Ensure compliance with system security policy.

Evaluate security solutions to ensure they meet security requirements for processing classified information.

Maintain operational security posture for an information system or program.

Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational Cybersecurity posture for a system, program, or enclave.

Develop and update the system security plan and other Cybersecurity documentation.

Assist with the management of security aspects of the information system and perform day-to-day security operations of the system.

Track and ensure appropriate user identification and authentication mechanism of the Information System (IS)

Obtain system authorization for ISs under their purview.

Provide support for a program, organization, system, or enclave's information assurance program.

Plan and coordinate implementation of IT security programs and policies

Manage and control changes to the system assessing the security impact of those changes.

Provide daily oversight and direction to contractor ISSOs.

Required Qualifications: Familiarity with commercial security products, security authorization techniques, security incident management, and PKI and authorization services.

Preferred Qualifications: NA

If you are interested in pursuing this opportunity, please respond back and include the following:

MS WORD Resume

Contact information.

Availability

Â

Upon receipt, one of our managers will contact you to discuss the position in full detail.

Steve Fleischner

Recruiting Manager

INTERMEDIA GROUP, INC.

EMAIL: steve@intermediagroup.com

LINKEDIN: https://www.linkedin.com/in/stevefleischner/

JASON DENMARK

Sourcing Recruiter

jdenmark@intermediagroup.com

• Following policies and procedures and escalating when policies or procedures are not followed.
• Escalating potential security incidents and providing relevant information.
• Meeting all security responsibilities defined in policies and procedures.

• Junior Network Security Engineer requires 0-2 years of experience with firewall technology.
• Network Security Engineer requires 2+ years of experience with firewall technology.
• Senior Network Security Engineer requires 5+ years of experience with firewall technology.

Additional Requirements:

• Knowledge of network protocols.
• Knowledge of physical and virtualized networking fundamentals, such as routing, switch, network configuration in VMware.
• Excellent network troubleshooting and recovery skills.
• A history of academic and professional success.
• Eligibility to work in the U.S. without visa sponsorship.
• Relocation to the Madison, WI, area (reimbursed).
• COVID-19 vaccination.

Preferred Additional Skills:

• Experience with micro-segmentation platforms, such as VMware NSX or Cisco ACI.
• Experience with Next Generation Firewall.
• Knowledge of scripting language basics (Powershell, Python, etc).

At Holman, we exist to provide rewarding careers and better lives for employees and their families. We hire, train, empower, and reward exceptional people. Our journey is guided by our desire to get it right every time and the acknowledgement that we have an opportunity to be better. To be better, we have to do better, and to do better we must know better. That’s why we are listening, open to learning new things – about ourselves and each other. We will never stop striving for improved diversity, equity, and inclusion because we are successful together when we feel trusted and supported. It’s The Holman Way.

• Design, implement, and support security tooling across cloud and on-prem infrastructures.
• Perform vulnerability assessments and reviews; facilitating remediation planning, exposure tracking, communicating risk, and reporting on mitigation status.
• Lead the development of security control assessments for common platforms and the implementation of findings from said assessments.
• Facilitate Incident Response activities as a Subject Matter Expert through the Incident Response life-cycle.
• Participate in the administration of security implementations (EPP/EDR, IPS/IDS, SIEM, etc).
• Support the ongoing administration, design and use of the Security Information & Event Monitoring platform, ensuring audit trails, system logs and other monitoring data is reviewed and actionable.
• Support the ongoing administration, design and user of network segmentation tools and underlying concepts.
• Provides security architecture knowledge and design concepts to Information Technology and Development teams.
• Apply or recommend adaptive security measures based on investigative findings and threat monitoring.
• Participate in and coordinates application security reviews, working with third party assessors and application owners to identify and remediate findings.
• Performs second level investigation into user reported threats such as phishing, machine compromise, advanced threats, etc.
• Advise management on best practices, current trends, and pertinent changes in internal/external threats and opportunities for improvement. Presents action plans for implementation and approval.
• Perform threat hunting based on Tactics, Techniques and Procedures (TTPs) and threat reporting from information sharing organizations (US-CERT, FS-ISAC, etc).
• Provide technical expertise to support vendor and project reviews.
• Performs all other duties and special projects as assigned.

• 5-7 years of combined Information Security and Technical Administration Experience.
• Experience with infrastructure and application security controls. This includes both designing and assessing security controls.
• Substantial experience with common information security management frameworks, MITRE ATT&CK, OWASP, CIS, International Standards Organization (ISO) 27001 and IT Infrastructure Library (ITIL).
• Substantial and advanced experience with security information and event management (SIEM) systems.
• Substantial experience with IDS/IPS and other network security platforms.
• Breadth and depth of technical and or functional expertise in security operations and other related areas within information technology departments such as Infrastructure, Engineering, Networking or Development.

Education and/or Training:

• Bachelor’s degree in Computer Sciences, Information Systems or another related field.
• Security Certifications such as CISSP/GIAC/CISA/CISM is preferred.

• Work with different product and IT infrastructure teams to comprehend the business and develop the knowledge required to perform job duties and responsibilities.
• Document and formally report testing initiatives, along with remediation recommendations and validation.
• Conduct tactical assessments that require expertise in social engineering, application security (web and mobile), physical methods, lateral movement, threat analysis, internal and external network architecture, and a wide array of commercial and bring-your-own (BYO) products.
• Conduct discovery and vulnerability assessment of enterprise-wide assets.
• Manage vulnerabilities across applications, endpoints, databases, networking devices, and mobile, cloud and third-party assets.
• Develop and maintain tools and scripts used in penetration-testing, vulnerability management, and red team processes.
• Communicate vulnerability results in a manner understood by technical and non-technical business units based on risk tolerance and threat to the business, and gain support through influential messaging.
• Work closely with the security operations center (SOC) to leverage intelligence sources, identify new threats in the wild and verify the organization's security posture against them.
• Liaise with the security engineering team to improve tool usage and workflow, as well as with the advanced threats and assessment team to mature monitoring and response capabilities.
• Regularly research and learn new TTPs using a variety of sources, and work with teammates to assess risk and implement and validate controls as necessary.
• Arrange and provide support to business units launching new technology applications and services to verify that new products/offerings are not at risk of compromise or information leakage.
• Occasionally attend and participate in change management policy discussions and meetings.
• Understand breach and attack simulation solutions and work with the team to validate controls effectiveness.
• Maintain and track third-party assets, their vulnerability state, remediation recommendations, overall security posture and potential threat to the business.
• Perform other duties as assigned.

• At least 5-7+ years' experience in information security administration, offensive tactics, monitoring and IR.
• Proficient in scripting languages such as Python, PowerShell, Bash and Ruby.
• Competent with testing frameworks and tools such as Burp Suite, Metasploit, Cobalt Strike, Kali Linux, Nessus, PowerShell Empire and AutoSploit.
• Experience conducting penetration-testing/red team engagements as a consultant or within a previous role in a professional organization.
• Strong operating system knowledge across *nix, Windows, and Mac; proficient with networking protocols.
• Familiarity with defensive and monitoring technologies such intrusion prevention/detection systems (IPS/IDS), security information and event management systems (SIEMs), firewalls, endpoint protection (EPP) and endpoint detection/response (EDR) tools, as well as user and entity behavior analytics (UEBA).
• Understanding of OWASP, the MITRE Telecommunication&CK framework and the software development lifecycle (SDLC).

Experience:

• Bachelor's degree in computer science (preferred), information assurance, MIS or related field, or equivalent.
• 5-8 years of related experience required.
• Proven trustworthiness and history of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating well.
• Self-starter requiring minimal supervision.
• Excellence in communicating business risk and remediation requirements from assessments.
• Analytical and problem-solving mindset.
• Highly organized and efficient.
• About certifications, preferably, one or more of the following: OSCP, OSCE, GPEN, GWAPT, CISSP.